[ltb-dev] [LDAP Tool Box - Bug #604] (New) Weak cryptography hash usage

noreply at lsc-project.org noreply at lsc-project.org
Tue Jul 23 01:31:54 CEST 2013


Issue #604 has been reported by John Menerick.

----------------------------------------
Bug #604: Weak cryptography hash usage
http://tools.lsc-project.org/issues/604

Author: John Menerick
Status: New
Priority: Urgent
Assigned to: 
Category: Self Service Password
Target version: 


While reviewing the code in file functions.inc.php, I observed a large number of weak cryptographic hashes.  They are not strong enough to be used for hashing credentials. 

Line 26, Line 32, Line 40, and Line 46 come to mind.  Additional information can be found @ http://www.hpenterprisesecurity.com/vulncat/en/vulncat/dotnet/weak_cryptographic_hash.html



-- 
You have received this notification because you have either subscribed to it, or are involved in it.
To change your notification preferences, please click here: http://tools.lsc-project.org/my/account
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ltb-project.org/pipermail/ltb-dev/attachments/20130723/5cb2c34c/attachment.htm>


More information about the ltb-dev mailing list